EUVD-2007-3580

Malware in sbrugna...

phpVideoPro Multiple XSS vulnerabilities

Advisory: phpVideoPro Multiple XSS vulnerabilities Advisory ID: SSCHADV2011-041 Author: Stefan Schurtz Affected Software: Successfully tested on phpVideoPro 0.9.7 Vendor URL: http://sourceforge.net/projects/phpvideopro/ Vendor Status: fix in the latest development code ==========================...

phpVideoPro <= 0.9.7 Multiple XSS Vulnerabilities - Active Check

phpVideoPro is prone to multiple cross-site scripting XSS vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

phpVideoPro Multiple Cross Site Scripting Vulnerabilities

phpVideoPro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the...

phpVideoPro 0.9.7 Cross Site Scripting

Advisory: phpVideoPro Multiple XSS vulnerabilities Advisory ID: SSCHADV2011-041 Author: Stefan Schurtz Affected Software: Successfully tested on phpVideoPro 0.9.7 Vendor URL: http://sourceforge.net/projects/phpvideopro/ Vendor Status: fix in the latest development code ==========================...

phpVideoPro 0.8.x/0.9.7 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51428/info phpVideoPro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

CVE-2007-3596

inc/vulcheck.inc in phpVideoPro before 0.8.8 permits non-alphanumeric characters in the sessid parameter, which has unknown impact and remote attack vectors, probably cross-site scripting XSS...

CVE-2007-3596

inc/vulcheck.inc in phpVideoPro before 0.8.8 permits non-alphanumeric characters in the sessid parameter, which has unknown impact and remote attack vectors, probably cross-site scripting XSS...

CVE-2007-3596

CVE-2007-3596 affects phpVideoPro up to version 0.8.7 (before 0.8.8). The vulnerability is in inc/vul_check.inc where the sess_id parameter accepts non‑alphanumeric characters. The impact is described as unknown (no explicit impact or attack vector details beyond a likely cross‑site scripting sug...